Login

Simple Machines Forum < 1.1.3 PHPSESSIONID Cookie Session Hijacking

Medium Nessus Network Monitor Plugin ID 4101

Synopsis

The remote host is vulnerable to a predictable ID flaw that allows hijacking of user accounts.

Description

The remote host is running the Simple Machines Forum (SMF), a web forum. This version of SMF is vulnerable to a flaw in the way that it handles 'PHPSESSIONID' cookie data. Specifically, if an attacker can convince a user to browse a malicious URI with a predefined 'PHPSESSIONID', the attacker can impersonate the user and hijack their account. Successful exploitation would lead to the attacker gaining full access to the targeted account.